Security Engineer (IAM) 110196

About the job Security Engineer (IAM) 110196Position: Security Engineer ( IAM )OverviewWe are seeking a highly skilled Microsoft Azure IAM Subject Matter Expert (SME) with extensive experience in Microsoft Entra, Azure Active Directory, and related technologies. The ideal candidate will possess deep knowledge and practical experience in Identity and Access Management (IAM) concepts, Azure security best practices, and have the ability to troubleshoot complex authentication and authorization issues.Key ResponsibilitiesMicrosoft EntraAdminister Entra ID, including user/group management, app registration, and service principals.Implement key IAM concepts such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC).Manage identity governance processes, including access reviews and entitlement management.Integrate Azure AD/Entra with Azure resources to ensure secure access and compliance.Implement Azure RBAC and security best practices.Manage Azure Policy and compliance efforts, including monitoring and reporting with Azure Monitor and Log Analytics.Microsoft Active Directory (AD)Administer AD domain services, including user, group, organizational units (OU), and Group Policy Objects (GPO).Manage AD replication and troubleshooting using tools like dcdiag and repadmin.Oversee security hardening measures, including tiered administration and delegation.Microsoft Active Directory Certificate Services (AD CS)Install and configure AD CS, including root and subordinate CAs, and manage certificate templates and enrollment.Oversee the certificate lifecycle management, including renewal automation and governance.Certificate Lifecycle Management (CLM)Manage certificate inventories and ensure timely expiration alerts.Implement automated issuance and renewal processes using SCEP and ACME protocols.Microsoft PKIDesign and secure enterprise PKI solutions, integrating Hardware Security Modules (HSM).Create policy and practice statements for PKI governance.Microsoft Network Policy Server (NPS)Configure RADIUS server with integration for AD authentication and 802.1X policies.Troubleshoot RADIUS authentication issues, utilizing logs and Event Viewer.Manage GCP IAM, including roles, service accounts, and project-level resource management.Integrate GCP environment with external identity providers and monitor security best practices.QualificationsProven experience with Microsoft Entra, Azure AD, and IAM concepts.Extensive knowledge of Microsoft AD, AD CS, and PKI management.Expertise in GCP IAM and integration with identity providers.Strong analytical and troubleshooting skills.Relevant certifications (e.g., Microsoft Certified: Azure Administrator, Microsoft Certified: Identity and Access Administrator).#J-18808-Ljbffr